Thanks for your note. On Wed, Jan 22, 2014 at 11:09:30AM +1100, David Cook wrote: > Here's the existing section (at least in DSDOC4x): > > " In postgresql.conf: uncomment the line starting: listen_addresses = > 'localhost'. Then tighten up security a bit by editing pg_hba.conf and > adding this line: host dspace dspace 127.0.0.1 255.255.255.255 md5" > > Proposed changes: > > 1) It might be worth mentioning that Postgresql listens to 'localhost' by > default and that it's probably not necessary to uncomment that > listen_addresses line. That said, it wouldn't hurt anything, so it doesn't > really matter to me.
The installed configuration may be distribution-dependent. It should be checked. Noted in the doco. > 2) In regards to pg_hba.conf, it should be mentioned that the line "host > dspace dspace 127.0.0.1 255.255.255.255 md5" should be added "above" any > host connections that refer to "all" databases. Done. > I've seen online tutorials that tell people to change the default local and > host connections (for localhost) as trust, but that's really not necessary. > In theory, it could also be dangerous as it allows any local user to access > Postgresql as any user they want. Indeed, that is poor advice. I use 'trust' only long enough to authenticate to Pg and set a superuser password that I know, then replace it with 'md5' and reload the config. -- Mark H. Wood, Lead System Programmer mw...@iupui.edu Machines should not be friendly. Machines should be obedient.
signature.asc
Description: Digital signature
------------------------------------------------------------------------------ CenturyLink Cloud: The Leader in Enterprise Cloud Services. Learn Why More Businesses Are Choosing CenturyLink Cloud For Critical Workloads, Development Environments & Everything In Between. Get a Quote or Start a Free Trial Today. http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk
_______________________________________________ DSpace-tech mailing list DSpace-tech@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/dspace-tech List Etiquette: https://wiki.duraspace.org/display/DSPACE/Mailing+List+Etiquette